The Best Guide To SOC2 Compliance

Everything you need to know to successfully complete SOC2 compliance

   Watch Promo

WHAT YOU'LL LEARN IN THIS CLASS

What is SOC2

History, purpose and scope
  • Administrative body: AICPA
  • History: trend from SAS70
  • Intent: To establish trust between a service provider and client


How to Plan for SOC2

Understand each step in the process from A to Z
  • Requirements: Learn about each control
  • Assemble your team: Learn which departments will need to participate and how to evaluate the most effective representatives
  • Create a project timeline: Set expectations with estimates of each task in order to manage delivery dates

Overview of Controls/Policies

Summarize the scope, expectations and best practices surrounding each control and policy

  • Controls: analysis of each class of control and the implications for respective policies
  • Policies: summary of key components and advice on how to evaluate scope
  • Mistakes to avoid: Learn how to quickly customize each policy to suit your company's specific needs

Best Practices: Controls/Policies

Understand how policies map to controls and how to evaluate scope & best practices for each policy

  • Common Pitfalls: learn how to assess the appropriate scope of each policy to suit your company's context
  • Controls: map each control to the appropriate policy & learn the implications before drafting your policies
  • Policies: a summary of key components and advice to help avoid common mistakes during the drafting process


Getting Started

Start your SOC2 project with Comply, a free open source policy library & workflow framework
  • Going Live: Learn how to install Comply and create your first project
  • Task Management Overview: Learn how to quickly assign and track tasks through Jira
  • Deep dive into our flexible policy templates: Quickly customize each policy to suit your company's specific needs


Your Instructor


Justin McCarthy
Justin McCarthy

Justin McCarthy is the co-founder and CTO of strongDM, the database authentication platform. He has spent his entire career building highly scalable software. As CTO of Rafter, he processed transactions worth over $1B collectively. He also led the engineering teams at Preact, the predictive churn analytics platform, and Cafe Press.


Course Curriculum


  Introduction
Available in days
days after you enroll
  Introduction To SOC2
Available in days
days after you enroll

Frequently Asked Questions


When does the course start and finish?
The course starts now and never ends! It is a completely self-paced online course - you decide when you start and when you finish.
How long do I have access to the course?
How does lifetime access sound? After enrolling, you have unlimited access to this course for as long as you like - across any and all devices you own.
What if I am unhappy with the course?
We would never want you to be unhappy! If you are unsatisfied with your purchase, contact us in the first 30 days and we will give you a full refund.

Get started now!